At BioBrain, we are serious about data protection and our technology is fully compliant withGDPR enabling our customers to maintain GDPR compliance while making use of theBioBrain platform. We facilitate consumer permissions and maintain total transparency withour clients.
Technical Adherence
BioBrain ensures robust security in both infrastructure and software through regular audits.Redundant data is avoided, and incoming data prohibits local file storage, opting for encrypted online storage with no local synchronization. Sensitive information sent via email is encrypted, and private identifying data is stored for the shortest possible duration. The backup policy is intentionally brief. Incident notifications are promptly and transparently communicated to clients, and there's a process for timely removal of personally identifying information upon customer request.
Our Essential Steps for GDPR Compliance
We take all necessary steps to raise company awareness through GDPR training and awareness for our employees. To establish a comprehensive approach to data protection, we follow this up with robust internal processes like review and documentation of stored and processed data along with the regular revision and updating of privacy communication, such as policies or notices. Addressing the rights of Data Subjects, including handling subject access requests, is a key aspect. The legal basis for data processing is carefully reviewed, along with the requirements pertaining to consent and considerations for the protection of children's data. Moreover, addressing data breach requirements and incorporating data protection by design principles are integral steps we follows in ensuring a robust and compliant data protection framework.
Request for Data Correction
BioBrain security administrators ensure fulfilment of GDPR regulatory requirements bylocating, modifying, and deleting data upon any such request.
Right to be Forgotten
Administrators within the BioBrain platform have the capability to permanently deleteindividual contacts and respondent personal data in accordance with GDPR timelines whenrequested through a data subject request.
About GDPR
The GDPR, implemented since May 25th, 2018, is a set of EU regulations applicable to companies handling personal data of individuals within the European Union. It aims to enhance and standardize data protection for EU individuals, defining their rights (e.g., right to be informed, right of access) and establishing accountability and governance standards for personal data. It also takes into account the transfer of personal data outside the EU and EEA (European Economic Area).
Complete GDPR GuidelineWhile BioBrain provides a technology platform which enables our customers to be GDPR-compliant, BioBrain customers should seek their own legal expertise on total GDPRcompliance. If you have additional questions about GDPR compliance, please reach out to
connect@biobrain.io
.svg){kind=icon}
.png)
